VYPR

Small Business 300 Series Managed Switches

by Cisco Systems, Inc.

CVEs (20)

  • CVE-2023-20189HigMay 18, 2023
    risk 0.57cvss 8.6epss 0.11

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20161HigMay 18, 2023
    risk 0.57cvss 8.6epss 0.10

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20160HigMay 18, 2023
    risk 0.57cvss 8.6epss 0.10

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20159HigMay 18, 2023
    risk 0.57cvss 8.6epss 0.10

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20162HigMay 18, 2023
    risk 0.56cvss 8.6epss 0.01

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20158HigMay 18, 2023
    risk 0.56cvss 8.6epss 0.01

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20157HigMay 18, 2023
    risk 0.56cvss 8.6epss 0.01

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20156HigMay 18, 2023
    risk 0.56cvss 8.6epss 0.01

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2023-20024HigMay 18, 2023
    risk 0.56cvss 8.6epss 0.01

    Multiple vulnerabilities in the web-based user interface of certain Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges on an affected device. These…

  • CVE-2019-1814HigMay 16, 2019
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the interactions between the DHCP and TFTP features for Cisco Small Business 300 Series (Sx300) Managed Switches could allow an unauthenticated, remote attacker to cause the device to become low on system memory, which in turn could lead to an unexpected…

  • CVE-2021-34739HigNov 4, 2021
    risk 0.53cvss 8.1epss 0.02

    A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gain unauthorized access to the web-based management interface of an affected…

  • CVE-2019-1892HigJul 6, 2019
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the Secure Sockets Layer (SSL) input packet processor of Cisco Small Business 200, 300, and 500 Series Managed Switches could allow an unauthenticated, remote attacker to cause a memory corruption on an affected device. The vulnerability is due to improper…

  • CVE-2018-0465MedOct 5, 2018
    risk 0.40cvss 6.1epss 0.01

    A vulnerability in the web-based management interface of Cisco Small Business 300 Series Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerability…

  • CVE-2017-12307MedJan 18, 2018
    risk 0.40cvss 6.1epss 0.01

    A vulnerability in the web framework of Cisco Small Business Managed Switches software could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web interface of an affected system. The vulnerability is due to…

  • CVE-2024-20263MedJan 26, 2024
    risk 0.38cvss 5.8epss 0.00

    A vulnerability with the access control list (ACL) management within a stacked switch configuration of Cisco Business 250 Series Smart Switches and Business 350 Series Managed Switches could allow an unauthenticated, remote attacker to bypass protection offered by a configured…

  • CVE-2021-40127MedNov 4, 2021
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an unauthenticated, remote attacker to render the…

  • CVE-2018-0408MedAug 1, 2018
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in the web-based management interface of Cisco Small Business 300 Series (Sx300) Managed Switches could allow an authenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an…

  • CVE-2018-0407MedAug 1, 2018
    risk 0.35cvss 5.4epss 0.01

    A vulnerability in the web-based management interface of Cisco Small Business 300 Series (Sx300) Managed Switches could allow an authenticated, remote attacker to conduct a persistent cross-site scripting (XSS) attack against a user of the web-based management interface of an…

  • CVE-2023-20188MedJun 28, 2023
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an authenticated, remote attacker to conduct a…

  • CVE-2013-1154Mar 7, 2013
    risk 0.00cvss epss 0.02

    The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76 and earlier allow remote attackers to cause a denial of service (SSL/TLS layer…